Changing location of configuration.php in core?

Discussion regarding Joomla! 1.5 security issues.
Joomla! Vulnerable Extensions: ... Extensions

Moderator: General Support Moderators

Forum rules
Forum Rules
Absolute Beginner's Guide to Joomla! <-- please read before posting, this means YOU.
Security Checklist
Forum Post Assistant - If you are serious about wanting help, you will use this tool to help you post.
Joomla! Guru
Joomla! Guru
Posts: 522
Joined: Mon Oct 01, 2007 11:35 am

Changing location of configuration.php in core?

Post by ewel » Tue Jan 01, 2008 10:29 pm

I read this post about moving configuration.php outside of the Joomla root:
Topic: FAQ: How do I move confidential files outside of public_html? ... #msg604266

I would like to follow this suggestion but the implication is that the configuration has to be edited manually and can no longer be edited from the admin backend.

So I was wondering if it would be possible to change something somewhere in the Joomla core files to point the admin backend to the configuration file with a new name and new location? Am I right to think that this would have the same positive effect on security as the suggestion made in that post?

If so, going one step further, would it be an idea for a future release to actually make an option in the admin backend where a custom name and location for the configuration file can be chosen?


Return to “Security in Joomla! 1.5”